Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer
File: Ol4QKeZcY2gSMttn2AU90vaU5h8.cer (raw, json)
Hash identifier: dniVtzadl4CUijQ212YUNrUcsG3JzwMs6mYjpxMpbC4=
Subject key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029D4D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 04:01:31 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 163.47.26.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 18:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171341 (0x29d4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 04:01:31 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:6b:00:22:4d:57:fa:a4:83:5e:59:48:ad:
5a:ea:22:6a:de:63:e5:15:5d:e5:10:8b:73:62:a9:
f1:1a:0a:be:48:bc:73:64:83:9d:dc:f6:44:60:d8:
56:9f:4b:ca:0b:fa:b5:d3:e7:fd:f8:1b:3e:52:3e:
6b:bd:c9:fc:2a:b4:79:2c:9c:de:b5:2f:00:b1:6c:
1e:30:90:ad:0f:d2:e0:77:48:cb:bf:3b:3a:01:02:
64:09:bf:af:49:30:a8:41:cb:f4:8a:14:d9:f8:65:
45:72:b2:ec:76:b1:18:6d:b2:37:06:9d:f7:80:62:
05:28:59:c0:25:75:5f:9f:80:6a:04:bc:f4:65:f0:
00:d3:64:59:64:0d:1d:63:00:1b:8b:54:bf:29:d0:
f0:8b:f6:2f:78:36:71:dc:c1:b4:3b:4e:3e:b7:dc:
b3:ef:0b:22:3d:88:46:20:ff:ae:7f:47:70:6a:06:
75:f2:31:cf:ea:4b:be:95:af:9a:2a:b8:dc:f0:c3:
ac:0a:e4:c1:22:7c:b1:a1:e3:9e:16:4c:8c:13:42:
3f:80:8e:6c:54:16:03:92:19:b5:68:57:7d:31:2d:
e3:4f:ad:09:db:db:9f:09:6b:e8:70:19:84:43:ce:
67:f2:dc:ff:8b:c1:cb:6e:db:3a:34:42:2f:40:36:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.47.26.0/23
Signature Algorithm: sha256WithRSAEncryption
94:c7:ee:06:fb:81:2e:82:da:1e:97:ec:01:03:40:15:71:8d:
7d:fd:e4:18:3e:af:a9:a4:d0:05:2a:0a:9f:50:bf:d7:a6:94:
70:52:df:4e:45:85:4d:82:07:61:4e:e0:16:8f:fc:a0:63:6d:
ca:d4:49:7c:8d:88:aa:51:13:0d:2c:f6:5c:5e:47:de:12:01:
47:0f:78:ee:02:dc:b1:7f:ed:b6:58:05:c9:4b:e2:6f:d2:1f:
9d:cc:4d:8a:26:77:c7:a6:6b:67:88:9b:ff:e7:85:b2:f4:74:
1d:51:ac:55:7d:97:8c:57:cd:6e:2c:a3:a3:4a:65:27:92:2a:
87:04:07:29:51:da:c3:bd:4e:c4:8a:e1:be:92:03:23:ab:26:
45:ee:87:19:5a:e4:84:35:7f:e8:b0:53:8d:ee:e1:1b:e1:d9:
eb:2a:43:fc:73:aa:2f:dc:7b:61:3a:6d:4d:00:62:a9:01:39:
5e:87:ae:45:e5:be:50:2f:af:f3:f6:a1:1e:13:b3:61:53:ba:
74:15:44:6c:df:da:f7:c8:77:db:15:71:cc:f2:f8:2c:e2:c0:
20:b3:ef:e7:ba:a4:2c:07:3f:58:38:07:6c:25:45:00:da:07:
1c:15:31:d9:aa:50:1c:88:c9:ce:7c:3b:36:e1:ee:a1:b5:5a:
fc:44:6e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:48:01 2026 by rpki-client